announce@apache.org, 2021-11

You are viewing a plain text version of this content. The canonical link for it is here.

- [ANNOUNCE] Apache MINA 2.0.22 & 2.1.5 released - posted by Emmanuel Lecharny <el...@apache.org> on 2021/11/01 03:16:08 UTC, 0 replies.
- CVE-2021-27644: Apache DolphinScheduler: DolphinScheduler mysql jdbc connector parameters deserialize remote code execution - posted by Calvin Kirs <ki...@apache.org> on 2021/11/01 09:08:24 UTC, 0 replies.
- Apache Month in Review: October 2021 - posted by Sally Khudairi <sk...@apache.org> on 2021/11/01 20:07:42 UTC, 0 replies.
- CVE-2021-41973: Apache MINA HTTP listener DOS - posted by Emmanuel Lecharny <el...@apache.org> on 2021/11/01 20:55:37 UTC, 0 replies.
- [ANNOUNCE] Apache Traffic Server 9.1.1 and 8.1.3 are Released - posted by Bryan Call <bc...@apache.org> on 2021/11/02 20:34:33 UTC, 0 replies.
- [ANNOUNCE] Apache Wicket 9.6.0 released - posted by Andrea Del Bene <ad...@apache.org> on 2021/11/02 22:05:36 UTC, 0 replies.
- [ANNOUNCE] Apache SystemDS 2.2.0 released - posted by Janardhan <ja...@apache.org> on 2021/11/03 03:31:13 UTC, 0 replies.
- [ANNOUNCE] Apache POI 5.1.0 released - posted by PJ Fanning <fa...@apache.org> on 2021/11/03 10:46:59 UTC, 0 replies.
- [ANNOUNCEMENT] HttpComponents Client 5.2-alpha1 Released - posted by Oleg Kalnichevski <ol...@apache.org> on 2021/11/03 14:36:30 UTC, 0 replies.
- Airflow Providers released on Thu Nov 4 - posted by Jarek Potiuk <po...@apache.org> on 2021/11/04 21:12:23 UTC, 0 replies.
- [ANNOUNCEMENT] Apache SkyWalking Satellite 0.3.0 Released - posted by han liu <li...@apache.org> on 2021/11/05 04:30:28 UTC, 0 replies.
- The Apache News Round-up: week ending 5 November 2021 - posted by Swapnil M Mane <sw...@apache.org> on 2021/11/05 08:18:15 UTC, 0 replies.
- [ANNOUNCE] Apache Qpid Proton 0.36.0 released - posted by Robbie Gemmell <ro...@apache.org> on 2021/11/05 11:01:26 UTC, 0 replies.
- [ANNOUNCE] Apache Jackrabbit 2.20.4 released - posted by Julian Reschke <re...@apache.org> on 2021/11/06 09:39:54 UTC, 0 replies.
- [ANNOUNCE] Apache Jackrabbit Oak 1.8.25 released - posted by Nitin Gupta <ng...@apache.org> on 2021/11/08 04:23:59 UTC, 0 replies.
- [ANNOUNCE] Apache NiFi 1.15.0 release - posted by Joe Witt <jo...@apache.org> on 2021/11/08 13:41:18 UTC, 0 replies.
- [ANNOUNCE] Release Apache Traffic Control 6.0.1 - posted by Zach Hoffman <zr...@apache.org> on 2021/11/10 00:04:41 UTC, 0 replies.
- [ANNOUNCE] Apache ShardingSphere 5.0.0 available - posted by Haoran Meng <me...@apache.org> on 2021/11/10 03:01:48 UTC, 0 replies.
- CVE-2021-41972: Apache Superset: Credentials leak - posted by Daniel Gaspar <dp...@apache.org> on 2021/11/11 13:28:07 UTC, 0 replies.
- Sponsor Success at Apache: Exploration and Practice of the Apache Way in Tencent - posted by Sally Khudairi <sk...@apache.org> on 2021/11/11 18:47:08 UTC, 0 replies.
- [ANNOUNCE] Apache Groovy 4.0.0-beta-2 Released - posted by Paul King <pa...@apache.org> on 2021/11/11 20:48:04 UTC, 0 replies.
- CVE-2021-43350: Apache Traffic Control: LDAP filter injection vulnerability in Traffic Ops - posted by Zach Hoffman <zr...@apache.org> on 2021/11/11 20:53:32 UTC, 0 replies.
- [ANNOUNCE] Apache Camel 3.13.0 Released - posted by Gregor Zurowski <gz...@apache.org> on 2021/11/12 11:04:21 UTC, 0 replies.
- The Apache Weekly News Round-up: week ending 12 November - posted by Sally Khudairi <sk...@apache.org> on 2021/11/12 12:17:57 UTC, 0 replies.
- [ANNOUNCEMENT] Apache SkyWalking Infra E2E 1.1.0 Released - posted by han liu <li...@apache.org> on 2021/11/15 03:41:39 UTC, 0 replies.
- [ANNOUNCE] Apache CloudStack 4.16.0.0 Release - posted by Nicolas Vazquez <nv...@apache.org> on 2021/11/15 14:34:01 UTC, 0 replies.
- [ANN] Apache Tomcat 10.1.0-M7 (alpha) available - posted by Mark Thomas <ma...@apache.org> on 2021/11/15 17:16:24 UTC, 0 replies.
- [ANN] Apache Tomcat 10.0.13 available - posted by Mark Thomas <ma...@apache.org> on 2021/11/15 17:36:46 UTC, 0 replies.
- [ANN] Apache Tomcat 9.0.55 available - posted by Rémy Maucherat <re...@apache.org> on 2021/11/15 20:10:56 UTC, 0 replies.
- [ANN] Apache Struts 2.5.27 - posted by Lukasz Lenart <lu...@apache.org> on 2021/11/16 07:03:01 UTC, 0 replies.
- Re: CVE-2021-43350: Apache Traffic Control: LDAP filter injection vulnerability in Traffic Ops - posted by Zach Hoffman <zr...@apache.org> on 2021/11/16 20:42:24 UTC, 0 replies.
- [ANNOUNCE] Apache Lucene 8.11.0 released - posted by Adrien Grand <jp...@apache.org> on 2021/11/17 09:14:34 UTC, 0 replies.
- [ANNOUNCE] Apache Solr 8.11.0 released - posted by Adrien Grand <jp...@apache.org> on 2021/11/17 09:18:19 UTC, 0 replies.
- CVE-2021-42250: Apache Superset: Possible log injection - posted by Daniel Gaspar <dp...@apache.org> on 2021/11/17 14:59:19 UTC, 0 replies.
- [ANNOUNCEMENT] HttpComponents Client 5.1.2 GA Released - posted by Oleg Kalnichevski <ol...@apache.org> on 2021/11/17 15:35:24 UTC, 0 replies.
- [ANNOUNCE] Apache Solr Operator v0.5.0 released - posted by Houston Putman <ho...@apache.org> on 2021/11/17 15:55:58 UTC, 0 replies.
- [ANN] Apache Tomcat 8.5.73 available - posted by Christopher Schultz <sc...@apache.org> on 2021/11/17 19:45:54 UTC, 0 replies.
- [ANNOUNCE] Apache Arrow 6.0.1 released - posted by Sutou Kouhei <ko...@apache.org> on 2021/11/18 08:59:23 UTC, 0 replies.
- [ANNOUNCE] Apache IoTDB 0.12.3 released - posted by Haonan Hou <ha...@apache.org> on 2021/11/18 14:21:47 UTC, 0 replies.
- CVE-2021-36372: Apache Ozone: Original block tokens are persisted and can be retrieved - posted by Siddharth Wagle <sw...@apache.org> on 2021/11/18 23:03:45 UTC, 0 replies.
- CVE-2021-39231: Apache Ozone: Missing authentication/authorization on internal RPC endpoints - posted by Siddharth Wagle <sw...@apache.org> on 2021/11/18 23:04:17 UTC, 0 replies.
- CVE-2021-39232: Apache Ozone: Missing admin check for SCM related admin commands - posted by Siddharth Wagle <sw...@apache.org> on 2021/11/18 23:04:45 UTC, 0 replies.
- CVE-2021-39233: Apache Ozone: Container-related datanode operations can be called without authorization - posted by Siddharth Wagle <sw...@apache.org> on 2021/11/18 23:06:09 UTC, 0 replies.
- CVE-2021-39234: Apache Ozone: Raw block data can be read bypassing ACL/authorization - posted by Siddharth Wagle <sw...@apache.org> on 2021/11/18 23:06:29 UTC, 0 replies.
- CVE-2021-39235: Apache Ozone: Access mode of block tokens are not enforced - posted by Siddharth Wagle <sw...@apache.org> on 2021/11/18 23:07:01 UTC, 0 replies.
- CVE-2021-39236: Apache Ozone: Owners of the S3 tokens are not validated - posted by Siddharth Wagle <sw...@apache.org> on 2021/11/18 23:07:24 UTC, 0 replies.
- CVE-2021-41532: Apache Ozone: Unauthenticated access to Ozone Recon HTTP endpoints - posted by Siddharth Wagle <sw...@apache.org> on 2021/11/18 23:07:46 UTC, 0 replies.
- ANNOUNCE] Apache Jackrabbit Oak 1.6.22 released - posted by Julian Reschke <re...@apache.org> on 2021/11/19 04:47:35 UTC, 0 replies.
- The Apache News Round-up: week ending 19 November 2021 - posted by Swapnil M Mane <sw...@apache.org> on 2021/11/19 17:52:58 UTC, 0 replies.
- [ANNOUNCE] Apache Beam 2.34.0 Release - posted by Kyle Weaver <ib...@apache.org> on 2021/11/19 18:15:34 UTC, 0 replies.
- [ANNOUNCE] Apache Qpid Dispatch 1.18.0 released - posted by Ken Giusti <kg...@apache.org> on 2021/11/19 22:10:15 UTC, 0 replies.
- CVE-2021-43557: Apache APISIX: Path traversal in request_uri variable - posted by Zexuan Luo <sp...@apache.org> on 2021/11/22 06:30:19 UTC, 0 replies.
- [ANNOUNCE] Apache Kafka 2.6.3 - posted by Mickael Maison <mi...@apache.org> on 2021/11/22 11:02:35 UTC, 0 replies.
- [ANNOUNCE] Apache Kafka 2.7.2 - posted by Mickael Maison <mi...@apache.org> on 2021/11/22 11:16:31 UTC, 0 replies.
- [ANNOUNCE] Apache APISIX 2.10.2 has been release - posted by tzssangglass <tz...@apache.org> on 2021/11/23 07:50:00 UTC, 0 replies.
- [ANNOUNCE] Apache JSPWiki 2.11.0 released - posted by Juan Pablo Santos Rodríguez <ju...@apache.org> on 2021/11/23 11:16:34 UTC, 0 replies.
- [CVE-2021-40369] Apache JSPWiki Cross-site scripting vulnerability on Denounce plugin - posted by Juan Pablo Santos Rodríguez <ju...@apache.org> on 2021/11/23 11:25:18 UTC, 0 replies.
- [CVE-2021-44140] Apache JSPWiki Arbitrary file deletion on logout - posted by Juan Pablo Santos Rodríguez <ju...@apache.org> on 2021/11/23 11:30:11 UTC, 0 replies.
- [ANNOUNCE] Apache OFBiz 18.12.02 released - posted by Jacopo Cappellato <ja...@apache.org> on 2021/11/24 10:49:48 UTC, 0 replies.
- [ANNOUNCE] Apache Camel 3.11.4 (LTS) Released - posted by Gregor Zurowski <gz...@apache.org> on 2021/11/24 12:41:58 UTC, 0 replies.
- The Apache News Round-up: week ending 26 November 2021 - posted by Swapnil M Mane <sw...@apache.org> on 2021/11/26 17:24:10 UTC, 0 replies.
- [ANNOUNCE] Apache APISIX 2.11.0 has been released - posted by 孙毅 <su...@apache.org> on 2021/11/30 02:29:02 UTC, 0 replies.
- [ANNOUNCE] Apache Groovy 4.0.0-rc-1 Released - posted by Paul King <pa...@apache.org> on 2021/11/30 04:25:21 UTC, 0 replies.